Information Security Risk Management

Showing 10 results for Information Security Risk Management
Project Story | June 2021 D3FEND Knowledge Graph Guides Security Architects to Design Better Cyber Defenses MITRE is looking for help from the cybersecurity community to build out an NSA-funded framework for network defense. The goal is to help security architects quickly understand the specific capabilities of a wide variety of defensive technologies.
Technical Paper | April 2021 Achieving Mission Assurance for Enterprises Today and Tomorrow: Zero Trust, The Cloud, and Other Tools MITRE Technical Fellow Samuel S. Visner explores how combining Zero Trust Architecture with emerging cloud and AI technologies is a better way to protect the modern enterprise against cybersecurity threats.
Technical Paper | May 2020 Enrollment and Identity Proofing Practices Statement Templates: Supporting Remote Proofing in Accordance with NIST SP 800-63A Identity Assurance Levels 2 & 3 This paper contains a methodology for high assurance identity proofing and customizable templates to develop a documented identity proofing process for Identity Assurance Levels 2 (Unsupervised Remote) and 3 (Supervised Remote In-Person).
Technical Paper | February 2020 Critical Infrastructure Cyberspace Analysis Tool (CICAT) Capability Description Critical Infrastructure Cyberspace Analysis Tool (CICAT) is a modeling and simulation capability for evaluating how an adversary might conduct a cyber attack, leveraging MITRE CVE™ and ATT&CK™ open source data.
Technical Paper | April 2018 Analysis of the NIST Mobile Device Security Practice Guide’s Applicability to Australia The Australian Cyber Security Growth Network contracted with MITRE to assess the applicability of the NIST Cybersecurity Practice Guide for Mobile Device Security: Cloud and Hybrid Builds to Australian organizations. This report summarizes our analyses.
Technical Paper | May 2017 Building a National Cyber Information-Sharing Ecosystem The authors discuss ways to build a national unclassified cyber information-sharing ecosystem based on lessons learned from cyber information-sharing in the U.S. and case studies of three regional Information Sharing and Analysis Organizations.
Technical Paper | October 2016 Resiliency Mitigations in Virtualized and Cloud Environments This paper discusses the challenges posed by virtual and cloud environments, and how cyber resiliency techniques can increase mission assurance in environments whose architectures are based on virtual infrastructure and cloud services.
Technical Paper | May 2016 Structured Cyber Resiliency Analysis Methodology The Structured Cyber Resiliency Analysis Methodology (SCRAM) defines processes, supported by such resources as frameworks/models, value scales, and datasets. This paper presents a high-level description of SCRAM and identifies representative resources.
Technical Paper | May 2016 The Risk Management Framework and Cyber Resiliency When advanced cyber threats are considered, cyber resiliency can be seen as essential to achieving the goals of the Risk Management Framework. This paper presents several perspectives and indicates how cyber resiliency fits from each perspective.
Technical Paper | May 2016 Cyber Resiliency Metrics-Key Observations This point paper presents observations about cyber resilience metrics, drawn from experience, workshop sessions, and the literature, which could be helpful to those seeking to define cyber resilience metrics.

Pages

Interested in MITRE's Work?

MITRE provides affordable, effective solutions that help the government meet its most complex challenges.
Explore Job Openings

MITRE is proud to be an equal opportunity employer. MITRE recruits, employs, trains, compensates, and promotes regardless of age; ancestry; color; family medical or genetic information; gender identity and expression; marital, military, or veteran status; national and ethnic origin; physical or mental disability; political affiliation; pregnancy; race; religion; sex; sexual orientation; and any other protected characteristics.

MITRE intends to maintain a website that is fully accessible to all individuals. If you are unable to search or apply for jobs and would like to request a reasonable accommodation for any part of MITRE’s employment process, please contact MITRE’s Recruiting Help Line at 703-983-8226 or email at recruitinghelp@mitre.org

Copyright © 1997-2021, The MITRE Corporation. All rights reserved.
MITRE is a registered trademark of The MITRE Corporation. Material on this site may be copied and distributed with permission only.